Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security Objectives Describe the types of computer security risks

Published byOswaldo Diller Modified over 9 years ago

Similar presentations

Presentation on theme: "Security Objectives Describe the types of computer security risks"— Presentation transcript:

1 Security Objectives Describe the types of computer security risks
Discuss the types of devices available that protect computers from system failure Identify ways to safeguard against computer viruses, worms, Trojan horses, denial of service attacks, back doors, and spoofing Explain the options available for backing up computer resources Identify risks and safeguards associated with wireless communications Discuss techniques to prevent unauthorized computer access and use Recognize issues related to information accuracy, rights, and conduct Identify safeguards against hardware theft and vandalism Discuss issues surrounding information privacy Explain the ways software manufacturers protect against software piracy Discuss ways to prevent health-related disorders and injuries due to computer use Define encryption and explain why it is necessary Next

2 Computer Security Risks
What is a computer security risk? Action that causes loss of or damage to computer system Next

3 Computer Viruses, Worms, and Trojan Horses
What are viruses, worms, and Trojan horses? Virus is a potentially damaging computer program Worm copies itself repeatedly, using up resources and possibly shutting down computer or network Trojan horse hides within or looks like legitimate program until triggered Payload (destructive event) that is delivered when you open file, run infected program, or boot computer with infected disk in disk drive Can spread and damage files Does not replicate itself on other computers Next

4 Computer Viruses, Worms, and Trojan Horses
How can a virus spread through an message? Step 1. Unscrupulous programmers create a virus program. They hide the virus in a Word document and attach the Word document to an message. Step 2. They use the Internet to send the message to thousands of users around the world. Step 3b. Other users do not recognize the name of the sender of the message. These users do not open the message. Instead they delete the message. These users’ computers are not infected with the virus. Step 3a. Some users open the attachment and their computers become infected with the virus. Next

5 Computer Viruses, Worms, and Trojan Horses
How can you protect your system from a macro virus? Set macro security level in applications that allow you to write macros At medium security level, warning displays that document contains macro Macros are instructions saved in an application, such as word processing or spreadsheet program Next

6 Computer Viruses, Worms, and Trojan Horses
What is an antivirus program? Identifies and removes computer viruses Most also protect against worms and Trojan horses Next

7 Computer Viruses, Worms, and Trojan Horses
What is a virus signature? Specific pattern of virus code Also called virus definition Antivirus programs look for virus signatures p. 561 Fig. 11-5 Next

8 Computer Viruses, Worms, and Trojan Horses
How does an antivirus program inoculate a program file? Records information about program such as file size and creation date Uses information to detect if virus tampers with file Attempts to remove any detected virus Quarantines infected files that it cannot remove Keeps file in separate area of hard disk Next

9 Computer Viruses, Worms, and Trojan Horses
What are some tips for preventing virus, worm, and Trojan horse infections? Set the macro security in programs so you can enable or disable macros Install an antivirus program on all of your computers Never open an attachment unless you are expecting it and it is from a trusted source If the antivirus program flags an attachment as infected, delete the attachment immediately Check all downloaded programs for viruses, worms, or Trojan horses Install a personal firewall program Next

10 Computer Viruses, Worms, and Trojan Horses
What is a denial of service attack and back door? A denial of service attack is an assault which disrupts computer access to an Internet service such as the Web or A back door is a program or set of instructions in a program that allow users to bypass security controls when accessing a computer resource Next

11 Computer Viruses, Worms, and Trojan Horses
What is spoofing? Makes a network or Internet Transmission appear legitimate IP spoofing occurs when an intruder computer fools a network into believing its IP address is from a trusted source Perpetrators of IP spoofing trick their victims into interacting with a phony Web site Next

12 Computer Viruses, Worms, and Trojan Horses
What is a firewall? Security system consisting of hardware and/or software that prevents unauthorized intrusion Next

13 Computer Viruses, Worms, and Trojan Horses
What is a personal firewall utility? Program that protects personal computer and its data from unauthorized intrusions Monitors transmissions to and from computer Informs you of attempted intrusion Next

14 Unauthorized Access and Use
How can companies protect against hackers? Intrusion detection software analyzes network traffic, assesses system vulnerabilities, and identifies intrusions and suspicious behavior Access control defines who can access computer and what actions they can take Audit trail records access attempts Next

15 Video: Honeynet Project Founder Lance Spitzer
The Honeynet tracks hackers and exposes their techniques low quality (click to start) high quality (click to start) Next

16 Unauthorized Access and Use
What are other ways to protect your personal computer? Disable file and printer sharing on Internet connection File and printer sharing turned off Next

17 Unauthorized Access and Use
What is a user name? Unique combination of characters that identifies user Password is private combination of characters associated with the user name that allows access to computer resources Next

18 Unauthorized Access and Use
How can you make your password more secure? Longer passwords provide greater security Next

19 Unauthorized Access and Use
What is a possessed object? Item that you must carry to gain access to computer or facility Often used with numeric password called personal identification number (PIN) Next

20 Unauthorized Access and Use
What is a biometric device? Authenticates person’s identity using personal characteristic Fingerprint, hand geometry, voice, signature, and iris Next

21 Smile, Big Brother wants your iris scan
Video: ID Security Smile, Big Brother wants your iris scan low quality (click to start) high quality (click to start) Next

22 Hardware Theft and Vandalism
What are hardware theft and hardware vandalism? Hardware theft is act of stealing computer equipment Cables sometimes used to lock equipment Some notebook computers use passwords, possessed objects, and biometrics as security methods For PDAs, you can password-protect the device Hardware vandalism is act of defacing or destroying computer equipment Next

23 Software Theft What is software theft?
Act of stealing or illegally copying software or intentionally erasing programs Software piracy is illegal duplication of copyrighted software Next

24 Software Theft What is a license agreement? Right to use software
Single-user license agreement allows user to install software on one computer, make backup copy, and sell software after removing from computer Next

25 Software Theft What are some other safeguards against software theft?
Product activation allows user to input product identification number online or by phone and receive unique installation identification number Business Software Alliance (BSA) promotes better understanding of software piracy problems Next

26 Information Theft What is encryption?
Safeguards against information theft Process of converting plaintext (readable data) into ciphertext (unreadable characters) Encryption key (formula) often uses more than one method To read the data, the recipient must decrypt, or decipher, the data Next

27 Information Theft How can I encrypt the contents of files and folders in WindowsXP? Next

28 Internet Security Risks
How do Web browsers provide secure data transmission? Many Web browsers use encryption Secure site is Web site that uses encryption to secure data Digital certificate is notice that guarantees Web site is legitimate Next

29 Internet Security Risks
What is a certificate authority (CA)? Authorized person or company that issues and verifies digital certificates Users apply for digital certificate from CA Next

30 Internet Security Risks
What is Secure Sockets Layer (SSL)? Provides encryption of all data that passes between client and Internet server Web addresses beginning with “https” indicate secure connections Next

31 System Failure What is a system failure?
Prolonged malfunction of computer Can cause loss of hardware, software, or data Caused by aging hardware, natural disasters, or electrical power disturbances Noise—unwanted electrical signal Overvoltage or power surge— significant increase in electrical power Undervoltage—drop in electrical supply Next

32 System Failure What is a surge protector?
Protects computer and equipment from electrical power disturbances Uninterruptible power supply (UPS) is surge protector that provides power during power loss Next

33 Backing Up — The Ultimate Safeguard
What is a backup? Duplicate of file, program, or disk Full backup all files in computer Selective backup select which files to back up Three-generation backup preserves three copies of important files In case of system failure or corrupted files, restore files by copying to original location Next

34 Wireless Security How can I ensure my wireless communication is secure? Secure your wireless access point (WAP) WAP should not broadcast your network name Enable Wired Equivalent Privacy or Wi-Fi Protected Access (WPA) Next

35 Ethics and Society What are computer ethics?
Moral guidelines that govern use of computers and information systems Unauthorized use of computers and networks Software theft Information accuracy Intellectual property rights—rights to which creators are entitled for their work Codes of conduct Information privacy Next

36 Ethics and Society What is an IT code of conduct?
Written guideline that helps determine whether computer action is ethical Employers can distribute to employees Next

37 Legal for employers to use monitoring software programs
Information Privacy What is information privacy? Right of individuals and companies to deny or restrict collection and use of information about them Difficult to maintain today because data is stored online Employee monitoring is using computers to observe employee computer use Legal for employers to use monitoring software programs Next

38 Information Privacy What are some ways to safeguard personal information? Fill in only necessary information on rebate, warranty, and registration forms Install a cookie manager to filter cookies Sign up for filtering through your Internet service provider or use an antispam program, such as Brightmail Clear your history file when you are finished browsing Avoid shopping club and buyers cards Set up a free account; use this address for merchant forms Do not reply to spam for any reason Inform merchants that you do not want them to distribute your personal information Turn off file and print sharing on your Internet connection Surf the Web anonymously with a program such as Freedom Web Secure or through an anonymous Web site such as Anonymizer.com Limit the amount of information you provide to Web sites; fill in only required information Install a personal firewall Next

39 Information Privacy What is an electronic profile?
Data collected when you fill out form on Web Merchants sell your electronic profile Often you can specify whether you want personal information distributed Next

40 Information Privacy What is a cookie?
Small file on your computer that contains data about you Some Web sites sell or trade information stored in your cookies Set browser to accept cookies, prompt you to accept cookies, or disable cookies User preferences How regularly you visit Web sites Interests and browsing habits Next

41 Information Privacy How do cookies work? Next

42 Information Privacy What are spyware, adware, and spam?
Spyware is program placed on computer without user’s knowledge Adware is a program that displays online advertisements Spam is unsolicited message sent to many recipients Next

43 Information Privacy How can you control spam? E-mail filtering
Service that blocks messages from designated sources Collects spam in central location that you can view any time Anti-spam program Attempts to remove spam Sometimes removes valid messages Next

44 Information Privacy What is phishing?
Scam in which a perpetrator sends an official looking that attempts to obtain your personal and financial information Next

45 Information Privacy What privacy laws have been enacted? Next

46 Information Privacy What privacy laws have been enacted? (cont’d) Next

47 Information Privacy What is content filtering?
Process of restricting access to certain material Internet Content Rating Association (ICRA) provides rating system of Web content Web filtering software restricts access to specified sites Next

48 Information Privacy What is computer forensics?
Also called digital forensics, network forensics, or cyberforensics Discovery, collection, and analysis of evidence found on computers and networks Computer forensic analysts must have knowledge of the law, technical experience, communication skills, and willingness to learn Next

49 Health Concerns of Computer Use
What are some health concerns of computer use? Computer vision syndrome (CVS)—eye and vision problems Carpal tunnel syndrome (CTS)—inflammation of nerve that connects forearm to palm Repetitive strain injury (RSI) Tendonitis—inflammation of tendon due to repeated motion Computer addiction—when computer consumes entire social life Next

50 Health Concerns of Computer Use
What precautions can prevent tendonitis or carpal tunnel syndrome? Spread fingers apart for several seconds while keeping wrists straight Gently push back fingers and then thumb Dangle arms loosely at sides and then shake arms and hands Next

51 Health Concerns of Computer Use
How can you ease eyestrain when working at the computer? Next

52 Health Concerns of Computer Use
What is ergonomics? Applied science devoted to comfort, efficiency, and safety in workplace elbows at 90° and arms and hands parallel to floor keyboard height: 23” to 28” adjustable backrest adjustable seat adjustable height chair with 5 legs for stability feet flat on floor Next

53 Health Concerns of Computer Use
What is green computing? Reducing electricity and environmental waste while using computer Next

54 Summary of Computer Security, Ethics and Privacy
Potential computer risks Ethical issues surrounding information accuracy, intellectual property rights, codes of conduct, and information privacy Safeguards that schools, business, and individuals can implement to minimize these risks Computer-related health issues, their preventions, and ways to keep the environment healthy Wireless security risks and safeguards

Download ppt "Security Objectives Describe the types of computer security risks"

Similar presentations

Chapter 11 Computer Security, Ethics and Privacy

Chapter 11 Computer Security, Ethics and Privacy
Computer Tech. What is an unsolicited e-mail message sent to many recipients Adware Spam Spyware Phishing here here Want to know how email spam really.

Computer Tech. What is an unsolicited message sent to many recipients Adware Spam Spyware Phishing here here Want to know how spam really.
Computer Security and Safety, Ethics and Privacy

Computer Security and Safety, Ethics and Privacy
Computer viruses Hardware theft Software Theft Unauthorized access by hackers Information Theft Computer Crimes.

Computer viruses Hardware theft Software Theft Unauthorized access by hackers Information Theft Computer Crimes.
Discovering Computers 2008 Fundamentals Fourth Edition Chapter 10 Computer Security, Ethics, and Privacy.

Discovering Computers 2008 Fundamentals Fourth Edition Chapter 10 Computer Security, Ethics, and Privacy.
Objectives Overview Define the term, digital security risks, and briefly describe the types of cybercriminals Describe various types of Internet and network.

Objectives Overview Define the term, digital security risks, and briefly describe the types of cybercriminals Describe various types of Internet and network.
Discovering Computers & Microsoft Office 2010 Discovering Computers Chapter 5.

Discovering Computers & Microsoft Office 2010 Discovering Computers Chapter 5.
Objectives Overview Describe various types of network attacks, and identify ways to safeguard against these attacks, including firewalls and intrusion.

Objectives Overview Describe various types of network attacks, and identify ways to safeguard against these attacks, including firewalls and intrusion.
Your Interactive Guide to the Digital World Discovering Computers Part 10 Manage Computing Securely, Safely and Ethically.

Your Interactive Guide to the Digital World Discovering Computers Part 10 Manage Computing Securely, Safely and Ethically.
1 COMPUTER SECURITY AND ETHICS Chapter Five. Computer Security Risks 2.

1 COMPUTER SECURITY AND ETHICS Chapter Five. Computer Security Risks 2.
Chapter 11 – Section 4-5.  Techniques use to Access the network  War Driving or access point mapping ▪ Individuals attempt to detect wireless network.

Chapter 11 – Section 4-5.  Techniques use to Access the network  War Driving or access point mapping ▪ Individuals attempt to detect wireless network.
Teachers Discovering Computers Integrating Technology and Digital Media in the Classroom 7 th Edition Security Issues and Ethics in Education Chapter 8.

Teachers Discovering Computers Integrating Technology and Digital Media in the Classroom 7 th Edition Security Issues and Ethics in Education Chapter 8.
Security, Privacy, and Ethics Online Computer Crimes.

Security, Privacy, and Ethics Online Computer Crimes.
Discovering Computers Fundamentals, 2012 Edition Living in a Digital World.

Discovering Computers Fundamentals, 2012 Edition Living in a Digital World.
Discovering Computers 2008 Chapter 11 Computer Security, Ethics and Privacy.

Discovering Computers 2008 Chapter 11 Computer Security, Ethics and Privacy.
Living in a Digital World Discovering Computers 2011.

Living in a Digital World Discovering Computers 2011.
Security Issues and Ethics in Education

Security Issues and Ethics in Education
Discovering Computers 2010

Discovering Computers 2010
Objectives Overview Define the term, digital security risks, and briefly describe the types of cybercriminals Describe various types of Internet and network.

Objectives Overview Define the term, digital security risks, and briefly describe the types of cybercriminals Describe various types of Internet and network.
Discovering Computers 2008 Chapter 11 Computer Security, Ethics and Privacy.

Discovering Computers 2008 Chapter 11 Computer Security, Ethics and Privacy.

Similar presentations

Ads by Google